[Q] Protecting our info - Android Software Development

quotes from http://www.popularmechanics.com/tec...-your-phone-during-a-traffic-stop-5587825?rss
"According to an American Civil Liberties Union (ACLU) letter to the director of the Michigan State Police on April 13, that department has several forensic cellphone analyzers deployed in the field. Forensic analyzers are routinely used in police investigations to recover data from computers and other digital devices."
"According to Cellebrite's product description, the UFED can grab email, Web bookmarks, Web history, SIM data, cookies, notes, MMS, instant messages, Bluetooth devices, locations, journeys, GPS fixes, call logs, text messages, contacts and more. '
You can call me paranoid but if this gets to be a major issue, is there a way to protect our information on our phones?
EDIT
After some searching here are a few other threads with concerns about the UFED: http://forum.xda-developers.com/showthread.php?t=1043865
http://forum.xda-developers.com/showthread.php?t=1045464
Came across this little bit of info and it might help stop the UFED. Its a review but it states which type of phones are not compatible with the UFED.....gotta make our phones software more similar to the Chinese software they use for their mobile devices???? And locked SIM cards must be unlocked also prior to extracting.
http://www.forensickb.com/2010/03/how-do-you-extract-information-from-45.html
I might be WAY OFF so somebody correct me. But doesn't the RAM hold everything like encryption keys or passwords if the phone is off or locked or something? So it doesnt matter if u get rid of your SD card or SIM card.......
Read this Devs it might help with prevention:
http://docs.google.com/viewer?a=v&q...V-ax7z&sig=AHIEtbRi6bj5_cppZB_bnS2qEERS5v5DDg
http://computer-forensics.sans.org/...ite-ufed-extract-phone-data-file-system-dump/

throw them away. put your tinfoil hat on, and dig a deep hole. if you circumvent it, and the police want / need to read it - which they probably never will - but if they can't, they're only going to get the rubber gloves out and throw you in guantamo prison.

HD2, Android on SD, get pulled over, eat the SD card!
It's the only way

DirkGently1 said:
HD2, Android on SD, get pulled over, eat the SD card!
It's the only way
Click to expand...
Click to collapse
You can pick up a fuze or tilt2 pretty cheap nowadays and do the same.
Sent from a super smooth captivate running andromeda

I wonder if having custom roms would interfere with this?

Related

WaveSecure

Hey there guys. Just wanted to share my experience with using wave secure on the desire.
After a friend was mugged and had his desire stolen from him it got me onto thinking about protection from having someone use my phone and loosing my photos etc and also trying to recover the stolen handset.
My search lead me to wave secure. A multi platform protection software.
It consists of two apps on the phone (the main app and then an app to prevent un-installing the main app).
It allows locking down the phone if a different sim is used in the handset and online tracking of the phone even with a different sim card inserted.
You can also issue commands to remotely wipe the device.
It so far seems pretty good and has caused no slow down of the handset as it does very little in the background.
There is a 7 day trial and then if you want to sign up input "goal" as a code to recieve a discount which works out at £10 a year ($14.99) which I think is pretty cheap!
Search in the market for it and give it a go!
Phil
the only issue i could see with this is the international text rates. Your phone under certain situations will text the server which is currently not based in europe. Apparantly there are plans to add a server in the UK at some point.
Also, if the phone locks, and the thief knows something about the phone, a hardreset will remove the protection. The only way around this is to root the phone and install as a system application.
ardsar said:
the only issue i could see with this is the international text rates. Your phone under certain situations will text the server which is currently not based in europe. Apparantly there are plans to add a server in the UK at some point.
Also, if the phone locks, and the thief knows something about the phone, a hardreset will remove the protection. The only way around this is to root the phone and install as a system application.
Click to expand...
Click to collapse
But that again after a hardreset your data will be wiped and that way it will be more secure then not having the program
I use it for the data wipe function , it boring to lose your phone. But its even worse to have them looking at your Privat mail / work mail / phone numbers and so on.
And if they do a data wipe then its good enough for me
Giland said:
But that again after a hardreset your data will be wiped and that way it will be more secure then not having the program
I use it for the data wipe function , it boring to lose your phone. But its even worse to have them looking at your Privat mail / work mail / phone numbers and so on.
And if they do a data wipe then its good enough for me
Click to expand...
Click to collapse
fair comment.
you don't get charged for international texts. I have had no such charges on my account so it must use a uk based server of some kind.
And I know that a hard reset will wipe it but as you so then so be it but in the event that someone finds it i know I can text my number first and request the program to locate the phone for me or lock it/wipe it etc. And even if they take the sim out and put their own in i can do the same so have a greater chance of either catching the theiving scum or getting it back etc.
Phil

New theory for signal drop/loss of data and dropped calls

So after reading mostly every post I could find on the net regarding the Vibrant and its signal bar issues, it's pretty apparent that most everyone experiences the signal indicator dropping when the phone is held a certain way, however this only seems to affect some people's data throughput and voice service. I have read a couple of people that do not have these dropped bars, but those posts are few and far between, so I think it is safe to assume that there is a definite bug with at least the way the phone displays signal.
I have a new theory. Now, I'm no expert with cellular technology, so this may, and probably is, totally wrong. But as I was unboxing the phone, I noticed that this was the first time I got a new SIM card with any T-Mobile phone since my first, the original T-Mobile PocketPC Phone Edition, in what was that, 2002? 2003? Every other upgraded handset I've ever owned didn't come with one and it was assumed you just pop it out of your previous phone and you were good to go. Have SIM cards changed at all the way they handle these newer networks, especially HSDPA and HSPA+, or is it still all of the same? My new SIM doesn't work because I believe it isn't registered to my account on the network, so I am using the old one. It is a dumb theory I know, but its worth thinking about. Someone who is better educated will probably school my noobness, but I just found it interesting that this is the first phone on T-Mobile that can take advantage of these newer networks for both voice and data, and also the first one to include a brand-spanking new SIM card, in my experience anyway.
If this theory is totally stupid, does anyone else have any other theories?
Also received a new SIM card, unasked for. No idea if and how this could affect signal, though.
New sim cards should have basically no input on your reception. It just tells your phone which signal ranges to use. Thats it. Also contact storage.
Meanwhile you have to seriously hamfist your phone to cause anything, none of which would result in a dropped call nor a stopped data transfer.
Please stop the false hype. Vibrant won't drop calls like the iphone would.
Sent from my SGH-T959 using XDA App
The old sim cards can only register on the network some 90k times or somesuch before they go bad. The swaps between 2g + 3g networks are causing lots to go bad faster. The new sim cards don't go bad at that point. That is the only difference. You will know if it's gone bad if you're getting "sos emergency calls" or "unable to register," but it shouldn't have any effect on loss of data/signal temporarily. It will simply no longer connect at all, period.
You sure about that magic 90k number? Got a link to back it up?
I would have a year tops if that were even true.
Sent from my SGH-T959 using XDA App
No links, sorry. I'm in cust care for t-mobile, and it was in one of our updates explaining why exactly we were getting these mysterious new sim card codes in the system when there was no other noticable changes to the sims. No increase in storage for contacts, or anything else, we were all kinda "huh"
Edit:After searching around for a relevant link I stumbled upon the one below stating that it might cause similar problems, although I've yet to see that being related in any of the troubleshooting I've done. At least the specifically UICC problem.
forums.t-mobile.com/t5/myTouch-3G-Slide/cannot-make-calls-losing-signal-apps-force-closing-Problems/m-p/416847
Sim cards can cause some problems for people. I can safely say that even with the weakest of signals MY Vibrant will xfer data. I have the screen shots to prove it. I've yet to drop a call. The only thing I have a problem with is the GPS and the occasional pausing. I wish we could get some information from T-Mobile and Samsung about this matter and when they plan on fixing it. I see they're working on it by "leaking" betas to i9000 handsets. They need to fix the bars too because it's more annoying than anything. Otherwise I love the phone. GPS/zero bars will do for now but I want it to match the rest of the phone. The phone has no problem seeing up to 14 sats (only on stock settings) but will not connect to them.
My sim card is the one that came with the phone. Some networks have a special 3G authentication based on your sim but I don't believe T-Mobile is one of the carriers that use this.
I am using my old sim card and I still get attenuation when I cover the bottom of the phone. I have never lost a call due to it so I have always figured that it is just faulty reporting of the signal. In my house, where I get pretty bad service, I can make it show no bars but I can still receive a call (I got one while I was playing with it by odd coincidence)

Theoretical Question: Stealing mobile data from T-Mobile without a data plan?

I'm sure I'm not the first one to ask/wonder this, nor will I be the last, but I was curious if anyone here knew of a way that you could (theoretically) hack a free data plan from T-Mobile or any other wireless carrier? I assume you would somehow have to hack into the company's servers and change your account settings or something, or would it be somehow possible to trick the network into thinking you were a data plan subscriber (without using a stolen SIM card of course)? Just curious to see what everyone thought, I DO NOT plan on attempting this, just fyi to any forum mods.
-bobofosho123
I think there is a way... Search on craigslist houston, texas and I found a guy can do it for $130. He said it will be on a different sim card.
There used to be a way to surf the web (on your T-Mobile phone) using MMS....I just pay for my data....it's MUCH EASIER....not cheaper, but easier...and ETHICAL
Sent from my HTC PH39100 using xda premium
Possible, yes. Many have been doing this since like ever because they either have the talent or has found someone that can. It's like hacked satellite, etc.
garychencool said:
Possible, yes. Many have been doing this since like ever because they either have the talent or has found someone that can. It's like hacked satellite, etc.
Click to expand...
Click to collapse
I understand how one could steal cable or satellite, i.e. with cable you simply buy a decoder box and hook the coax up from a neighbor and with satellite you just buy your own and blah blah. But with cell phone internet, if the network doesn't recognize your device or sim card as being registered with the network I don't think you could do it. The only way I could think of would be to hack into T-Mo's servers and change your account settings or to use a stolen sim card with a data plan on it. But then again, I might be wrong. Do u know the technical details of how it would be done though? Btw I'm a Samsung Vibrant running CM7, not sure how that would affect the hacking process, just fyi.
Well this is different from hacking satellite because allvyour doing is receiving the satellite data, your probably not going to any. For wifi, all you need is a password. For Mobile cell towers, we'll you would indeed need the simple card to work where a plan must be set for SIM card and the account associated with it. Think of a sim card being your devices mac address. Of course you can spoof SIMON cards. But you would need an account with Internet in it. You could hack, do that stuff, and set the account to prepaid where the balance is thousands of dollars but that would raise too many alarms. Either way, it's possible and the phone companies are not stupid (anymore).
I actually did this on my nokia 5530 XpressMusic back before they upgraded their servers. Somehow i got data for free, some guy actually told me that first gen iphones back then worked with free data as well. Now the servers were fixed and no more free data

nfc to open doors?

The building is my condo which I am referring to which currently has swipe access. All condo owners have the "tab" which we currently pass over the little box (please excuse my technical jargon ) to open the door.
I was hoping my nfc phone could copy/mimic/be sent to the same "frequency" as the tab to open the door thus eliminating the need to carry the tab on my key chain.
is there any way my phone can learn the signal?
Man I can't help you with that, but it seems like a cool idea though. good luck
http://hackaday.com/2011/09/30/passive-rfid-tag-cloning/
I believe there are certain door locks that can be opened via bluetooth, so I'd think it's not out of the question
It really depends on the type of technology used in your condo. I checked with one of my friends condo tags and my phone wouldn't recognize it. The phone could read stuff like subway cards and my XPERIA's SmartTags and you can copy all* data from those onto the phone itself.
Moved to Q&A
Please post in the correct section next time
Sent from my Nocturnalized One XL using Forum Runner
Matt1408 said:
It really depends on the type of technology used in your condo. I checked with one of my friends condo tags and my phone wouldn't recognize it. The phone could read stuff like subway cards and my XPERIA's SmartTags and you can copy all* data from those onto the phone itself.
Click to expand...
Click to collapse
could you tell me which app you used for copying the data????
While cool in theory, I would hate for something like that to actually work. The whole point of a system like that is that nobody can copy them, otherwise you could have people who have no business having access to your building able to come and go. Former residents, friends of residents, strangers who happened to see someone's key laying out and quickly copied it with their phone, etc.
For this to work the system would first of all have to be compatible with standard ISO/IEC 14443.
Secondly: modern NFC phones do not support card emulation in the way a "normal" reader would be able to read. You would have to have operator support and special SIM card to be able to clone the card as you intended.
I am afraid that there is no easy solution how to make a normal access control system support NFC mobile phones.

[Q] hacking mobile

Right i might seem abit paranoid here but how hard is it for someone to hack into your mobile either by phone or telephone number / sim carrier and track your messages or where you are located etc. I may of pissed of some druggies and are well connected ie know software developers who work for service providers! etc!
They are the type of people who blame someone for there problems ie Tripped over a pavement when drunk and will try and get even with the pavement slab by jabbing it or something . I don't think there is anyway for them to do this but just wanted to make sure
ps my phone is a Samsung GT-S5620 on the network tesco :good:
i think it might be possible, but not fully...
hacking through just the telephone number...
(Maybe tapping into your calls and messages / logging your 3G data)
but not physically going through your phones system...
maybe WiFi hack...
prevent
Jomari29 said:
i think it might be possible, but not fully...
hacking through just the telephone number...
(Maybe tapping into your calls and messages / logging your 3G data)
but not physically going through your phones system...
maybe WiFi hack...
Click to expand...
Click to collapse
Hmm i only have pay n go and don't 3g on when out! Any idea on how to prevent this stuff! In all honesty i am looking into getting an iPhone with a new network possibly giffgaff

Categories

Resources